AzPolicyAdvertizer

last sync: 2025-Jul-15 17:24:34 UTC

Azure Kubernetes Service Clusters should use managed identities

Azure BuiltIn Policy definition

Source Azure Portal
Display name Azure Kubernetes Service Clusters should use managed identities
Id da6e2401-19da-4532-9141-fb8fbde08431
Version 1.0.1
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.1
Built-in Versioning [Preview]
Category Kubernetes
Microsoft Learn
Description Use managed identities to wrap around service principals, simplify cluster management and avoid the complexity required to managed service principals. Learn more at: https://aka.ms/aks-update-managed-identities
Cloud environments AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown
Available in AzUSGov The Policy is available in AzureUSGovernment cloud. Version: '1.*.*'
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases IF (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.ContainerService/managedClusters/servicePrincipalProfile Microsoft.ContainerService managedClusters properties.servicePrincipalProfile True False
Microsoft.ContainerService/managedClusters/servicePrincipalProfile.clientId Microsoft.ContainerService managedClusters properties.servicePrincipalProfile.clientId True False
Rule resource types IF (1)
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
[Preview]: Control the use of AKS in a Virtual Enclave d300338e-65d1-4be3-b18e-fb4ce5715a8f VirtualEnclaves Preview BuiltIn true
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-10-21 16:42:13 change Patch (1.0.0 > 1.0.1)
2022-05-06 16:29:23 add da6e2401-19da-4532-9141-fb8fbde08431
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC